Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

publishpress — Vulnerabilities & Security Advisories 19

Browse all 19 CVE security advisories affecting publishpress. AI-powered Chinese analysis, POCs, and references for each vulnerability.

PublishPress is a WordPress plugin designed to manage editorial workflows and content publishing processes. Historically, the plugin has been susceptible to multiple security vulnerabilities, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation issues. These vulnerabilities often stem from insufficient input validation and improper access controls. While no major public security incidents have been widely documented, the 19 CVEs on record indicate a consistent pattern of security flaws that could allow attackers to compromise website integrity, steal sensitive data, or gain unauthorized administrative access. Regular updates and careful configuration are essential for maintaining security when using this plugin.

Found 2 results / 19Clear Filters
Top products by publishpress: PublishPress Authors Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes Gutenberg Blocks Post Expirator PublishPress Revisions Co-Authors, Multiple Authors and Guest Authors in an Author Box with PublishPress Authors PublishPress Blocks – Block Controls, Block Visibility, Block Permissions PublishPress Capabilities
CVE IDTitleCVSSSeverityPublished
CVE-2025-48332 WordPress Gutenberg Blocks <= 3.3.1 - Local File Inclusion Vulnerability — Gutenberg BlocksCWE-98 7.5 High2025-08-14
CVE-2025-49032 WordPress Gutenberg Blocks plugin <= 3.3.1 - Cross Site Scripting (XSS) vulnerability — Gutenberg BlocksCWE-79 6.5 Medium2025-07-03

This page lists every published CVE security advisory associated with publishpress. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.